ZipRecruiter

Log In

1

Senior Vulnerability Analyst Jobs (NOW HIRING)

KBR, Inc.

Senior Vulnerability Researcher

Beavercreek, OH · On-site

$142K - $213K/yr

Title: Senior Vulnerability Researcher Why Join Us? * Innovative Projects: KBR's work is at the ... Perform crash triage, exploitability assessment, and root-cause analysis * Develop proof-of-concept ...

Keeper Security

Senior Vulnerability Engineer

$117K - $160K/yr

About the Job As a Senior Vulnerability Engineer, you will design, build, and scale systems for ... Create dashboards and analytics to track vulnerability exposure, remediation SLAs, and risk trends

Healthcare

Sr Vulnerability Management Engineer

OR · Remote

$104K - $143K/yr

The Impact You'll Make in this Role The Senior Vulnerability Management Engineer is a senior ... Analyze findings, validate exploitability, and provide clear, actionable remediation guidance to ...

Omnissa

Sr. Vulnerability Management Engineer

Atlanta, GA · On-site

$100K - $138K/yr

As a Sr. Vulnerability Management Engineer, you will design enterprise-wide prioritization ... Willingness to mentor junior analysts and raise the maturity of the overall program. * Preferred ...

next page

Showing results 1-20

All JobsSenior Vulnerability Analyst Jobs

Senior Vulnerability Analyst information

See salary details

$48.5K

$102.5K

$130.5K

How much do senior vulnerability analyst jobs pay per year?

As of Jun 29, 2026, the average yearly pay for senior vulnerability analyst in the United States is $102,527.00, according to ZipRecruiter salary data. Most workers in this role earn between $88,000.00 and $116,500.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Senior Vulnerability Analyst, and why are they important?

To thrive as a Senior Vulnerability Analyst, you need deep knowledge of cybersecurity principles, vulnerability assessment methodologies, and a solid background in information technology, often supported by certifications like CISSP, CEH, or OSCP. Expertise with vulnerability scanning tools (e.g., Nessus, Qualys), penetration testing frameworks, and security information and event management (SIEM) systems is typically required. Strong analytical thinking, attention to detail, and effective communication skills set top performers apart in this role. These skills ensure accurate identification and remediation of security weaknesses, protecting organizational assets from evolving cyber threats.

What is the difference between Senior Vulnerability Analyst vs Vulnerability Analyst?

AspectSenior Vulnerability AnalystVulnerability Analyst
CertificationsCompTIA Security+, CISSP, CEHCompTIA Security+, CEH
ExperienceTypically 3+ years in cybersecurity rolesEntry to 2 years in vulnerability assessment
Work EnvironmentSecurity teams, IT departments, consulting firmsIT teams, security operations centers, consulting firms
ResponsibilitiesLeading vulnerability scans, mentoring, reportingConducting scans, identifying vulnerabilities, basic reporting

The main difference between a Senior Vulnerability Analyst and a Vulnerability Analyst lies in experience, responsibilities, and leadership. Senior analysts typically have more experience, handle complex assessments, and mentor junior staff, whereas vulnerability analysts focus on executing scans and identifying vulnerabilities. Both roles are essential in cybersecurity teams and often work in similar environments.

How does a Senior Vulnerability Analyst typically collaborate with other teams to address security risks?

As a Senior Vulnerability Analyst, you will frequently work alongside IT, DevOps, and incident response teams to identify, prioritize, and remediate security vulnerabilities. Effective communication is key, as you'll need to translate complex technical findings into actionable recommendations for both technical and non-technical stakeholders. Regular meetings, vulnerability review sessions, and cross-team planning are common, ensuring that remediation efforts align with organizational priorities and compliance requirements. This collaborative approach not only strengthens the organization’s security posture but also fosters ongoing professional growth and knowledge sharing.

What does a Senior Vulnerability Analyst do?

A Senior Vulnerability Analyst is responsible for identifying, assessing, and prioritizing security vulnerabilities within an organization's systems, networks, and applications. They use specialized tools to scan for vulnerabilities and analyze security data, then work with IT and security teams to recommend and implement mitigation strategies. In addition to technical analysis, they often help develop security policies, conduct risk assessments, and provide guidance on best practices. Their expertise helps protect the organization from cyber threats and ensures compliance with industry standards.
More about Senior Vulnerability Analyst jobs
What cities are hiring for Senior Vulnerability Analyst jobs? Cities with the most Senior Vulnerability Analyst job openings:
What are the most commonly searched types of Vulnerability Analyst jobs? The most popular types of Vulnerability Analyst jobs are:
What states have the most Senior Vulnerability Analyst jobs? States with the most job openings for Senior Vulnerability Analyst jobs include:
What job categories do people searching Senior Vulnerability Analyst jobs look for? The top searched job categories for Senior Vulnerability Analyst jobs are:
Senior Vulnerability Analyst jobs near you
Senior Database Vulnerability Analyst

Senior Database Vulnerability Analyst

PD Inc

Fort George G Meade, MD • On-site

$95K - $120K/yr

Full-time

Medical, Retirement, PTO

Posted 17 days ago

Key responsibilities

  • Review, identify, and report problems with the installation and operations of application instances to include system options, software used and not used, default security controls, and system-wide options or parameters that may create security vulnerabilities.

  • Identify, monitor, analyze, report, and brief status of database vulnerabilities, ensuring high risk and high severity vulnerabilities are managed with increased visibility and escalation.

  • Assess, audit, review, analyze, validate, and report database Security Requirements Guide and STIG vulnerabilities, and ensure security controls are implemented within databases in accordance with DoD, DISA, and cybersecurity policies and procedures.

Job description

Job Title:  Senior Database Vulnerability Analyst
Location: Fort Meade, MD 20755
Clearance Level: Active Secret Clearance
Job Type: Full-Time
Must be U.S. Citizen
PD Inc International is seeking an experienced and mission-driven Senior Database Vulnerability Analyst to provide Cybersecurity Management support in a U.S. government (DoD) environment. 
Education Requirement:
  • Bachelor's degree or equivalent work experience
Years of Experience:
  • Five + years of relevant/recent experience with Oracle, SQL, MySQL, or DB2 and cybersecurity.
Certification Requirements:
  • Current 8570/8140 requirement certification
Clearance Requirements:
  • Active Secret Clearance
Requirements:
  • Serve as an application technical specialist for assets connected to isolated environments, NIPRNet and SIPRNet to support cybersecurity and IT services.
  • Review, identify, and report problems with the installation and operations of application instances to include system options, software used and not used, default security controls that are enabled, disabled, or bypassed, and system wide options or parameters that may create security vulnerabilities.
  • Determine the impact and risk of submitted change requests prior to implementation and participate in change advisory board (CAB) meetings (up to daily) to provide cyber oversight for database changes that affect the level of risk.
  • Recommend security countermeasures to mitigate identified application risks.
Application Vulnerability Analysis:
  • Identify, monitor, analyze, report, and brief status of vulnerabilities.
  • Ensure high risk and high severity vulnerabilities are managed with increased visibility and escalated.
  • Analyze, validate, monitor, and report compliance status of DoD and DISA directives and orders.           
  • Create, maintain, and provide automated and customized vulnerability reports.
  • Analyze mission requirements and organizational feedback to improve vulnerability reports and processes.
  • Provide recommendations for application vulnerability analysis, guidance, deficiency resolution, and implementation suggestions to DISA customers and Mission Partners.
Application Compliance Validation and Support:
  • Assess, audit, review, analyze, validate, and report database Security Requirements Guide (SRG) and STIG vulnerabilities, and ensure security controls are implemented within databases IAW DoD, DISA and cybersecurity policies and procedures.
  • Evaluate discrepancies as they relate to policy, orders, and database SRG and/or STIGs, and document recommended additions, deletions, or changes.
  • Identify and report the need to add technical guidance for modification of policies and orders.
  • Review and validate the installation and configuration of cyber tools on assets, and report deficiencies.
  • Review database SRG and/or STIGs as updates are released, and report changes with the potential to have significant impact.
  • Determine the impact and risk of submitted change requests prior to implementation and participate in meetings to provide cyber oversight for web changes that affect the level of risk.
  • Recommend security countermeasures to mitigate identified web risks.
  • Participate in audits and provide documentation (up to daily).
Deliverables:
  • Daily/weekly/monthly/quarterly/annual vulnerability analysis reports
  • Also includes Deliverables that apply to all tasks listed in section 6, Performance Requirements.
~~~~~~~~~~~~~~~
About PD Inc International (PD Inc): PD Inc is a leading high-tech firm as well as an applied think tank and solutions provider.  Our team has been providing expertise and solutions to the US Government (Department of Defense, Department of State, Department of Homeland Security, Veterans Affairs, etc.) and to commercial clients for over 20-years.  
We perform software development and complex technical implementation daily.  We conduct R&D, prototyping, and develop hardware and software solutions for our clients.  Our qualified personnel--including engineers and technical managers--are capable of performing system integration, technology implementation, and services throughout the federal government and in the private sector.
We have a highly innovative environment, and we foster consistent learning and growth. We encourage our employees to innovate while teaching them discipline and principles. 
PD Inc benefits include highly competitive salary, 401K, health care, paid time off, no-limit Student loan forgiveness (merit based), and we sponsor new/qualified employees for Security Clearance.
Employees can also take advantage of casual dress code, free parking, corporate discounts, and gym memberships.

Powered by JazzHR

YyCZgvWcdz

PD logo

About PD

Sourced by ZipRecruiter

Industry

It services

Company size

1 - 10 Employees

Headquarters location

Baltimore, MD, US

Year founded

2001

View All PD Jobs